Payload (computing)

In

transmitted data that is the actual intended message. Headers and metadata are sent only to enable payload delivery^[1]^[2] and are considered overhead

.

In the context of a computer virus or worm, the payload is the portion of the malware which performs malicious action.

The term is borrowed from

transportation, where payload

refers to the part of the load that pays for transportation.

Networking

In

framing bits and a frame check sequence.^[3]^[4] Examples are Ethernet frames, Point-to-Point Protocol (PPP) frames, Fibre Channel frames, and V.42 modem frames

.

Programming

In

protocol overhead from the actual data. For example, a JSON web service

response might be:

{ "data": { "message": "Hello, world!" } }

The string Hello, world! is the payload of JSON message, while the rest is protocol overhead.

In computer security, the payload is the part of the private user text which could also contain malware such as worms or viruses which performs the malicious action; deleting data, sending spam or encrypting data.^[5] In addition to the payload, such malware also typically has overhead code aimed at simply spreading itself, or avoiding detection.

References

^ "payload". Pcmag.com. 1994-12-01. Retrieved 2021-04-29.
^ "Payload". Techterms.com. Retrieved 2021-04-29.
doi:10.17487/RFC1122. RFC 1122
. Retrieved 2010-06-07.

^ "Data Link Layer (Layer 2)". The TCP/IP Guide. 2005-09-20. Retrieved 2010-01-31.

^ "Payload". Techopedia.com. Retrieved 2018-03-05.

v
t
e
Information security
Related security categories

Computer security

Automotive security

Cybercrime
Cybersex trafficking

Computer fraud

Cybergeddon

Cyberterrorism

Cyberwarfare

Electromagnetic warfare

Information warfare

Internet security

Mobile security

Network security

Copy protection

Digital rights management

vectorial version
Threats

Adware

Advanced persistent threat

Arbitrary code execution

Backdoors

Hardware backdoors

Code injection

Crimeware

Cross-site scripting

Cross-site leaks

DOM clobbering

History sniffing

Cryptojacking

Botnets

Data breach

Drive-by download

Browser Helper Objects

Viruses

Data scraping

Denial-of-service attack

Eavesdropping

Email fraud

Email spoofing

Exploits

Hacktivism

Insecure direct object reference

Keystroke loggers

Logic bombs

Time bombs

Fork bombs

Zip bombs

Fraudulent dialers

Malware

Payload

Phishing
Voice

Polymorphic engine

Privilege escalation

Ransomware

Rootkits

Scareware

Shellcode

Spamming

Social engineering

Spyware

Software bugs

Trojan horses

Hardware Trojans

Remote access trojans

Vulnerability

Web shells

Wiper

Worms

SQL injection

Rogue security software

Zombie

Defenses

Application security
Secure coding

Secure by default

Secure by design
Misuse case

Computer access control
Authentication
Multi-factor authentication

Authorization

Computer security software
Antivirus software

Security-focused operating system

Data-centric security

Obfuscation (software)

Data masking

Encryption

Firewall

Intrusion detection system
Host-based intrusion detection system (HIDS)

Anomaly detection

Security information and event management (SIEM)

Mobile secure gateway

Runtime application self-protection

Site isolation

Retrieved from "https://en.wikipedia.org/w/index.php?title=Payload_(computing)&oldid=1218481032"

[pcmag-1] "payload". Pcmag.com. 1994-12-01. Retrieved 2021-04-29.

[techterms-2] "Payload". Techterms.com. Retrieved 2021-04-29.

[3] :10.17487/RFC1122. RFC 1122
. Retrieved 2010-06-07.

[4] "Data Link Layer (Layer 2)". The TCP/IP Guide. 2005-09-20. Retrieved 2010-01-31.

[5] "Payload". Techopedia.com. Retrieved 2018-03-05.

[1]

[2]

[3]

[4]

[5]

Networking

Programming

Security

See also

References